111daccd1aa4c06683ddf2e920ac7ce9065f3e582b66f9ffdd826005e5de6ccd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-06_15835826a973b4593fbe82a0ea77f162_cryptolocker
Size

50KB
Sample

241006-h7btdavfkr
MD5

15835826a973b4593fbe82a0ea77f162
SHA1

659a24d5f166bb3baedf025a199852332565bbf9
SHA256

111daccd1aa4c06683ddf2e920ac7ce9065f3e582b66f9ffdd826005e5de6ccd
SHA512

d1408bfe4ce65a38606990b64968789c44bb420b6deeb6c7a91ba01b1510f5bb0d6e1869308a8ad587f4f3deab5c1f1b0e59d69b4d59de1e7482f23304eacca9
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vdXfJ:X6QFElP6n+gJBMOtEvwDpjBtEdXfJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-06_15835826a973b4593fbe82a0ea77f162_cryptolocker
- Size
  
  50KB
- MD5
  
  15835826a973b4593fbe82a0ea77f162
- SHA1
  
  659a24d5f166bb3baedf025a199852332565bbf9
- SHA256
  
  111daccd1aa4c06683ddf2e920ac7ce9065f3e582b66f9ffdd826005e5de6ccd
- SHA512
  
  d1408bfe4ce65a38606990b64968789c44bb420b6deeb6c7a91ba01b1510f5bb0d6e1869308a8ad587f4f3deab5c1f1b0e59d69b4d59de1e7482f23304eacca9
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vdXfJ:X6QFElP6n+gJBMOtEvwDpjBtEdXfJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2